The “TDL-4″ botnet

Infernal News > Site News > Security News > The “TDL-4″ botnet

Published by dante on 30-Jun-2011 13:59 (160 reads)

bot net graphic

The next big target for feds should be this big bastard of a botnet.

Kaspersky Labs is the only software vender to date with a solution for this malware generated giant.

The “TDL-4″ botnet now has more than 4.5 million infected PCs running on it and is the “most sophisticated threat” to computer security today, according to Kaspersky Labs researcher Sergey Golovanov.

Kaspersky’s anti-virus software identifies the botnet as TDSS. “TDSS uses a range of methods to evade signature, heuristic, and proactive detection, and uses encryption to facilitate communication between its bots and the botnet command and control center,” “TDSS also has a powerful rootkit component, which allows it to conceal the presence of any other types of malware in the system.”

The TDL-4 botnet was first seen in 2008, and as it affects the MBR (master boot record) it's very difficult to detect.

It also has its own “anti-virus” that prevents other botnets from taking it over.

Download "TDSSKiller" from here:TDSSKiller

Just do it. You'll sleep better.

1 Comment(s) Items by the same author

Other articles in this category	Published on	Hits
Update your Java NOW!	14-Jan-2013 11:20	35
Microsoft Neutralizes Kelihos Botnet	28-Sep-2011 09:29	123
FBI Arrests Suspected LulzSec and Anonymous Hackers	22-Sep-2011 18:04	106
PayPal Phishing Campaign	20-Sep-2011 17:19	129
The PayPal 14	13-Sep-2011 14:32	91
Scotland Yard Arrests LulzSec Hacker 'Kayla'	02-Sep-2011 11:00	121
Topiary's Arraignment	01-Aug-2011 09:15	118
Social Network Scheme w/Malware	27-Jul-2011 19:49	127
"Hactivist" suspect 'Topiary' arrested in the Shetland Islands	27-Jul-2011 12:45	126
FBI raids alleged "Hactivists" homes	19-Jul-2011 12:24	124
US man 'hacker next door' gets 18-year sentence	14-Jul-2011 13:36	150
15 arrested in "Hactivist" crackdown in Italy	08-Jul-2011 13:29	125
The "Rustock" Bot-Net in Review	05-Jul-2011 14:43	136
FBI Raids Iowa Home of Woman With "Hactivist" Ties	05-Jul-2011 07:27	119
The “TDL-4″ botnet	30-Jun-2011 13:59	161
Hactivist raided in Ohio	29-Jun-2011 18:33	143
FBI hits back at 2 "scareware" fraud groups in U.S., Europe	23-Jun-2011 00:34	136
New Firefox Exploit Revealed by Sophos	12-Jun-2011 21:23	115
Spain arrests 3 in Sony security breach	10-Jun-2011 10:38	150
Sourcing the Mac malware	29-May-2011 08:20	136
Mac Malware	20-May-2011 00:28	252

The comments are owned by the author. We aren't responsible for their content.

Author	Thread
dante	Published: 2011/7/1 1:36 Updated: 2011/7/1 1:37
Webmaster Joined: 2010/1/8 From: Dayton, Ohio Comments: 309 Online!	Re: The “TDL-4″ botnet Some additional info regarding the reported "invulnerability" of this bot net. It's not able to react to the end users' abilty to clean their machines. If EVERYONE were to take a couple of hours to hit help desks like the one available here for free:http://infernallogic.com/help/index.php then the botnet would not only cease to grow in size, but would eventually be eliminated. Of course that probably isn't going to happen due to the lack of "give-a-damn" of the average computer user. It's a shame that folks don't fully utilize the resources available..